CVE-2020-21047

2023-08-2219:16:09

Debian Security Bug Tracker

security-tracker.debian.org

libcpu component

denial-of-service

out-of-bounds write

off-by-one error

reachable assertion

elf files

bound checks

unix

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

10.3%

JSON

The libcpu component which is used by libasm of elfutils version 0.177 (git 47780c9e), suffers from denial-of-service vulnerability caused by application crashes due to out-of-bounds write (CWE-787), off-by-one error (CWE-193) and reachable assertion (CWE-617); to exploit the vulnerability, the attackers need to craft certain ELF files which bypass the missing bound checks.

OSVersionArchitecturePackageVersionFilename
Debian12allelfutils< 0.180-1elfutils_0.180-1_all.deb
Debian11allelfutils< 0.180-1elfutils_0.180-1_all.deb
Debian999allelfutils< 0.180-1elfutils_0.180-1_all.deb
Debian13allelfutils< 0.180-1elfutils_0.180-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	elfutils	< 0.180-1	elfutils_0.180-1_all.deb
Debian	11	all	elfutils	< 0.180-1	elfutils_0.180-1_all.deb
Debian	999	all	elfutils	< 0.180-1	elfutils_0.180-1_all.deb
Debian	13	all	elfutils	< 0.180-1	elfutils_0.180-1_all.deb